This course is designed to provide an instructor-led, immersive classroom approach for participants who want to become proficient in the foundational use of Barracuda WAF-as-a-Service. The course will feature an expansion of the material covered in the on-demand videos from the Barracuda WAF-as-a-Service Foundation and Advanced Tracks, as well as hands-on lab exercises to put the foundational content in real-worldcontext for all participants.
Agenda
- WAF-as-a-Service Overview
- Overview
- Architecture
- WAF-as-a-Service using your own Containers
- Licensing
- Traffic Flow
- Applications and Application Modes
- Setting up WAFaaS
- Interface Access
- Setup Wizard
- Restricting Access
- WAF-as-a-Service Modes
- DNS Zones
- Servers
- App Profiles
- URL Profiles Overview
- App Profiles Settings
- Extended Match Rules
- Data Theft Protection
- File Upload Protection and ATP
- Bot Protection
- Bot Spam Mitigation
- Honey Pots
- Client Tarpits
- Client Challenges
- Client Fingerprint and Risk Score
- Pre-defined Bots
- Account Takeover Protection
- Credential Attack Protection
- Brute Force Protection
- Privileged Account Protection
- Endpoints
- What are Endpoints?
- Let’s Encrypt
- Security Mechanisms
- Configuration Tuning
- Recommendations
- Vulnerability Remediation Service
- False Positives
- Trusted Hosts
- Logs, Monitoring, and Reports
- Logs
- Monitoring
- Reports
- Notifications
- Violation Responses and Response Pages
- Role-Based Administration
- License Management
- Custom Block Pages
- General Security Components
- URL Normalization
- Request Limits
- Cookie Security
- URL Protection
- Parameter Protection
- URL Encryption
- Allow/Deny Rules for Headers
- IP Address Geolocation
- Response Cloaking
- URL Access and Redirects
- DDoS Protection
- DDoS Basics
- Allow and Block Lists
- Brute Force Prevention
- Web Scraping
- Slow Client Prevention
- Client Evaluation
- API Security
- API Services
- API Discovery
- JSON Security
- GraphQL
- JWT Validation
- API Response Policies
- Traffic Rewrite
- URL Translation
- Request Rewrite
- Response Rewrite
- Body Rewrite
- Client-Side Protection
- Content Security Policies
- Sub-Resource Integrity
- Application Delivery
- Load Balancing
- Persistence
- Connection Pooling
- CDN
- System Management
- Role-Based Administration
- License Management
- Configuration Snapshots
- GitHub Integration
Audience
Barracuda WAF-as-a-Service - Foundation is designed for technical participants who willbe supporting field deployments. System administrators, network engineers, and technicalstaff who are current Barracuda Networks partners and customers are the main audiencefor this course.
Format
- Available in-person or remote.
- Maximum 10 participants.
Duration
2 days
Prerequisites
- Knowledge of DNS, Domain Zones, and DNS Records
- Knowledge of the most common application-layer protocols and application services
- Knowledge of web application technologies and OWASP Top 10 attacks
- Knowledge of programming languages such as HTML, Java, or SQL is a plus
- Knowledge of API-based web applications is a plus
- Knowledge of Content Security Policies is a plus
Pricing
Please contact your Barracuda Networks Sales Representative for pricing information.
Additional Information
This class contains hands-on labs accessible via the Internet. To access the labs, make sure that your client PC is equipped with an RDP client (i.e., Microsoft Remote Desktop Connection) and is allowed to establish outgoing connections on TCP port TCP port 33800 – 33801.